From owner-freebsd-questions  Mon Jun 11 21:23:51 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mail.tecdigital.net (cci.tol.itesm.mx [132.254.97.16])
	by hub.freebsd.org (Postfix) with SMTP id 0019A37B403
	for <questions@FreeBSD.ORG>; Mon, 11 Jun 2001 21:23:37 -0700 (PDT)
	(envelope-from madd@tecdigital.net)
Received: (qmail 41067 invoked from network); 12 Jun 2001 04:22:24 -0000
Received: from unknown (HELO midgar) (madd@127.0.0.1)
  by 127.0.0.1 with SMTP; 12 Jun 2001 04:22:24 -0000
Message-ID: <018e01c0f2f7$74bf6c80$0a00a8c0@midgar>
From: "Mario Doria" <madd@tecdigital.net>
To: "Gerard Samuel" <trini0@optonline.net>,
	"Richard Lucas" <rlucas@threeh.com>
Cc: "FreeBSD Questions" <questions@FreeBSD.ORG>
References: <20010611151353.E24079-100000@localhost> <3B259546.4700A942@optonline.net>
Subject: Re: IPFilter not blocking?
Date: Mon, 11 Jun 2001 23:23:38 -0500
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4522.1200
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I had the same problem, for me it worked when I removed all traces of IPFW
on my kernel and did not enable it as a module.


----- Original Message -----
From: "Gerard Samuel" <trini0@optonline.net>
To: "Richard Lucas" <rlucas@threeh.com>
Cc: "FreeBSD Questions" <questions@FreeBSD.ORG>
Sent: Monday, June 11, 2001 11:06 PM
Subject: Re: IPFilter not blocking?


> IPFilter doesnt bridge on FreeBSD, so I dont know if your plan would work.
> As far as I know, only IPFIREWALL bridges...
>
> Richard Lucas wrote:
>
> > I've setup a bridging firewall by adding the following to my kernel:
> >
> > options BRIDGE
> > options IPFILTER
> > options IPFILTER_LOG
> > options IPFILTER_DEFAULT_BLOCK
> >
> > I also put in net.link.ether.bridge=1 in my sysctl.conf file. The
problem
> > I'm having is it isn't blocking anything. I even tried taking out my
> > ruleset and just using block in all and that still doesn't block
anything.
> > The bridging works fine but it doesn't block any packets at all. Anyone
> > have any ideas what the problem might be?
> >
> > -Richard
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-questions" in the body of the message
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message